Remote access to local network
First Claim
1. A method of communication for enabling remote access of an access terminal to an access point, comprising:
- establishing a first protocol tunnel between the access point on a local network and a security gateway;
establishing a plurality of child security associations based on the first protocol tunnel, wherein a first one of the child security associations is for carrying traffic between the access point and an operator core network and a second one of the child security associations is for carrying traffic between the access point and the access terminal;
obtaining a local network address from the access point for the access terminal to enable the access terminal to remotely access the local network via the first protocol tunnel, wherein the local network address is obtained by the access point from a router serving the local network;
establishing a second protocol tunnel between the access terminal and the security gateway after the first protocol tunnel is established;
determining that a packet is received via a first one of the first protocol tunnel and the second protocol tunnel; and
forwarding the received packet over a second one of the first protocol tunnel and the second protocol tunnel based on the determination.
1 Assignment
0 Petitions
Accused Products
Abstract
Multiple protocol tunnels (e.g., IPsec tunnels) are deployed to enable an access terminal that is connected to a network to access a local network associated with a femto access point. A first protocol tunnel is established between a security gateway and the femto access point. A second protocol tunnel is then established in either of two ways. In some implementations the second protocol tunnel is established between the access terminal and the security gateway. In other implementations the second protocol tunnel is established between the access terminal and the femto access point, whereby a portion of the tunnel is routed through the first tunnel.
81 Citations
29 Claims
-
1. A method of communication for enabling remote access of an access terminal to an access point, comprising:
-
establishing a first protocol tunnel between the access point on a local network and a security gateway; establishing a plurality of child security associations based on the first protocol tunnel, wherein a first one of the child security associations is for carrying traffic between the access point and an operator core network and a second one of the child security associations is for carrying traffic between the access point and the access terminal; obtaining a local network address from the access point for the access terminal to enable the access terminal to remotely access the local network via the first protocol tunnel, wherein the local network address is obtained by the access point from a router serving the local network; establishing a second protocol tunnel between the access terminal and the security gateway after the first protocol tunnel is established; determining that a packet is received via a first one of the first protocol tunnel and the second protocol tunnel; and forwarding the received packet over a second one of the first protocol tunnel and the second protocol tunnel based on the determination. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. An apparatus for communication for enabling remote access of an access terminal to an access point, comprising:
-
a tunnel controller, comprising a processor, configured to establish a first protocol tunnel between the access point on a local network and a security gateway; the tunnel controller further configured to establish a plurality of child security associations based on the first protocol tunnel, wherein a first one of the child security associations is for carrying traffic between the access point and an operator core network and a second one of the child security associations is for carrying traffic between the access point and the access terminal; an address controller configured to obtain a local network address from the access point for the access terminal to enable the access terminal to remotely access the local network via the first protocol tunnel, wherein the local network address is obtained by the access point from a router serving the local network; the tunnel controller further configured to establish a second protocol tunnel between the access terminal and the security gateway after the first protocol tunnel is established; and a communication controller configured to determine that a packet is received via a first one of the first protocol tunnel and the second protocol tunnel, and further configured to forward the received packet over a second one of the first protocol tunnel and the second protocol tunnel based on the determination. - View Dependent Claims (17, 18, 19, 20, 21)
-
-
22. An apparatus for communication for enabling remote access of an access terminal to an access point, comprising:
-
means for establishing a first protocol tunnel between the access point on a local network and a security gateway; means for establishing a plurality of child security associations based on the first protocol tunnel, wherein a first one of the child security associations is for carrying traffic between the access point and an operator core network and a second one of the child security associations is for carrying traffic between the access point and the access terminal; means for obtaining a local network address from the access point for the access terminal to enable the access terminal to remotely access the local network via the first protocol tunnel, wherein the local network address is obtained by the access point from a router serving the local network; means for establishing a second protocol tunnel between the access terminal and the security gateway after the first protocol tunnel is established; means for determining that a packet is received via a first one of the first protocol tunnel and the second protocol tunnel; and means for forwarding the received packet over a second one of the first protocol tunnel and the second protocol tunnel based on the determination. - View Dependent Claims (23, 24, 25)
-
-
26. A non-transitory computer-readable medium for enabling remote access of an access terminal to an access point, comprising code for causing a computer to:
-
establish a first protocol tunnel between the access point on a local network and a security gateway; establish a plurality of child security associations based on the first protocol tunnel, wherein a first one of the child security associations is for carrying traffic between the access point and an operator core network and a second one of the child security associations is for carrying traffic between the access point and the access terminal; obtain a local network address from the access point for the access terminal to enable the access terminal to remotely access the local network via the first protocol tunnel, wherein the local network address is obtained by the access point from a router serving the local network; establish a second protocol tunnel between the access terminal and the security gateway after the first protocol tunnel is established; determine that a packet is received via a first one of the first protocol tunnel and the second protocol tunnel; and forward the received packet over a second one of the first protocol tunnel and the second protocol tunnel based on the determination. - View Dependent Claims (27, 28, 29)
-
Specification